Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/1cfe5c-0546-4482-935a-cb386358d151/1/f-7uOmyTfdLklTURaknpNiGXzlw.roa
File: f-7uOmyTfdLklTURaknpNiGXzlw.roa (raw, json)
Hash identifier: GncfihwikwepZHu2Ztle6NR+e3YDiKI4my8SctdFtBA=
Subject key identifier: 7F:EE:EE:3A:6C:93:7D:D2:E4:95:35:11:6A:49:E9:36:21:97:CE:5C
Certificate issuer: /CN=0194ab9a8f4a20e829dd4575a88c8125c1c8a67f
Certificate serial: 018ADB4B1B7A69E964A9DB7424F453CA0462
Authority key identifier: 01:94:AB:9A:8F:4A:20:E8:29:DD:45:75:A8:8C:81:25:C1:C8:A6:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AZSrmo9KIOgp3UV1qIyBJcHIpn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/1cfe5c-0546-4482-935a-cb386358d151/1/f-7uOmyTfdLklTURaknpNiGXzlw.roa
Signing time: Thu 28 Sep 2023 10:17:27 +0000
ROA not before: Thu 28 Sep 2023 10:17:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51300
IP address blocks: 46.28.24.0/24 maxlen: 24
46.28.24.0/21 maxlen: 21
46.28.27.0/24 maxlen: 24
46.28.28.0/24 maxlen: 24
46.28.29.0/24 maxlen: 24
46.28.30.0/24 maxlen: 24
46.28.31.0/24 maxlen: 24
46.28.25.0/24 maxlen: 24
46.28.26.0/24 maxlen: 24
185.202.122.0/24 maxlen: 24
185.202.123.0/24 maxlen: 24
185.202.120.0/22 maxlen: 22
185.202.120.0/24 maxlen: 24
185.202.121.0/24 maxlen: 24
193.135.146.0/24 maxlen: 24
193.135.146.0/23 maxlen: 23
193.135.147.0/24 maxlen: 24
207.244.214.0/23 maxlen: 23
207.244.214.0/24 maxlen: 24
207.244.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:db:4b:1b:7a:69:e9:64:a9:db:74:24:f4:53:ca:04:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0194ab9a8f4a20e829dd4575a88c8125c1c8a67f
Validity
Not Before: Sep 28 10:17:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7feeee3a6c937dd2e49535116a49e9362197ce5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b4:3d:b4:7b:22:08:c9:e1:c7:cc:0e:42:a4:
df:cb:95:ad:19:6d:a6:91:05:a0:08:c1:0c:b2:49:
e3:c9:6d:c7:26:ac:17:bd:fc:df:36:a6:08:7c:ce:
14:94:ea:76:9b:19:48:bb:6d:c9:3a:5f:d9:23:e0:
11:a8:61:ec:d2:76:74:61:0f:de:37:e6:51:c2:ff:
1f:f1:9f:14:8b:8a:98:47:57:ca:19:cb:c2:b6:46:
ee:4b:bc:9f:8d:10:8b:14:4d:86:e9:42:20:29:e0:
1e:eb:9a:9d:02:a4:92:77:bc:2c:84:bb:20:18:45:
84:8d:3c:2d:ca:67:3b:12:17:a9:f5:88:ab:53:ba:
6d:56:b9:73:77:b4:b7:64:4f:8a:f2:03:d3:c0:62:
17:13:f0:86:96:d3:da:62:40:1d:1a:0b:9e:77:64:
78:bc:4e:b6:92:48:05:62:95:a0:12:4d:42:e3:f5:
eb:44:d3:9c:eb:14:d2:1a:9f:9f:0b:58:49:bc:39:
a9:f1:a6:23:bf:5b:18:a0:46:7f:5b:13:db:c0:9e:
9c:ed:5e:95:8f:07:00:da:c6:51:5e:91:a0:75:c0:
44:58:6d:be:00:07:e1:59:9e:bd:0e:ba:9a:bf:35:
17:41:70:66:5a:35:e6:b8:0f:fc:36:80:ed:7a:b5:
6b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:EE:EE:3A:6C:93:7D:D2:E4:95:35:11:6A:49:E9:36:21:97:CE:5C
X509v3 Authority Key Identifier:
keyid:01:94:AB:9A:8F:4A:20:E8:29:DD:45:75:A8:8C:81:25:C1:C8:A6:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AZSrmo9KIOgp3UV1qIyBJcHIpn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/1cfe5c-0546-4482-935a-cb386358d151/1/f-7uOmyTfdLklTURaknpNiGXzlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/1cfe5c-0546-4482-935a-cb386358d151/1/AZSrmo9KIOgp3UV1qIyBJcHIpn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.24.0/21
185.202.120.0/22
193.135.146.0/23
207.244.214.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:c3:19:7b:a7:63:ad:31:0e:cd:7d:25:62:b2:2e:93:82:90:
1a:66:0b:f5:b5:c3:13:29:02:f1:1f:f7:4a:60:a3:2b:d7:78:
d3:6e:1d:8c:aa:04:82:86:81:40:2b:8e:2c:a4:de:a6:0c:27:
f2:b7:b0:67:0b:db:f2:2b:38:71:18:56:ee:52:39:d8:2a:c6:
3a:61:cf:2a:f6:46:9e:ee:ff:95:7e:69:0c:85:1a:95:20:95:
fe:66:bb:8a:ab:41:d9:d7:65:e0:fb:e6:f1:94:c9:67:f3:1a:
74:93:c0:28:03:51:20:e0:fd:15:1f:0d:6b:10:94:de:a9:78:
91:5b:27:aa:5a:91:c2:86:45:25:01:8f:69:18:79:cb:7f:48:
59:b4:74:b7:6a:c1:51:3c:2d:fb:a7:b6:f9:68:e3:05:18:e2:
07:c2:fe:2b:96:c9:56:97:9c:6b:06:e8:f3:bf:b7:46:43:1e:
8b:78:cb:3f:5a:ef:7c:a5:e5:aa:0f:36:80:92:2b:61:44:94:
f6:f9:c9:a9:08:8d:d6:0d:d2:b9:e1:0f:4e:1b:1f:9d:ea:56:
94:ef:b0:4c:6d:52:89:e0:5d:f6:74:3a:43:80:f6:33:25:2b:
dc:1f:88:50:18:81:c8:e1:f3:10:90:9b:92:cf:9d:ee:37:3e:
cf:2a:f7:ec
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAYrbSxt6aelkqdt0JPRTygRiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxOTRhYjlhOGY0YTIwZTgyOWRkNDU3NWE4OGM4MTI1YzFj
OGE2N2YwHhcNMjMwOTI4MTAxNzI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZmVlZWUzYTZjOTM3ZGQyZTQ5NTM1MTE2YTQ5ZTkzNjIxOTdjZTVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmbQ9tHsiCMnhx8wOQqTfy5WtGW2m
kQWgCMEMsknjyW3HJqwXvfzfNqYIfM4UlOp2mxlIu23JOl/ZI+ARqGHs0nZ0YQ/e
N+ZRwv8f8Z8Ui4qYR1fKGcvCtkbuS7yfjRCLFE2G6UIgKeAe65qdAqSSd7wshLsg
GEWEjTwtymc7Ehep9YirU7ptVrlzd7S3ZE+K8gPTwGIXE/CGltPaYkAdGgued2R4
vE62kkgFYpWgEk1C4/XrRNOc6xTSGp+fC1hJvDmp8aYjv1sYoEZ/WxPbwJ6c7V6V
jwcA2sZRXpGgdcBEWG2+AAfhWZ69DrqavzUXQXBmWjXmuA/8NoDterVrTQIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFH/u7jpsk33S5JU1EWpJ6TYhl85cMB8GA1UdIwQY
MBaAFAGUq5qPSiDoKd1FdaiMgSXByKZ/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVpTcm1vOUtJT2dwM1VWMXFJeUJKY0hJcG44LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8xY2ZlNWMtMDU0Ni00NDgyLTkzNWEt
Y2IzODYzNThkMTUxLzEvZi03dU9teVRmZExrbFRVUmFrbnBOaUdYemx3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS8xY2ZlNWMtMDU0Ni00NDgyLTkzNWEtY2IzODYzNThkMTUx
LzEvQVpTcm1vOUtJT2dwM1VWMXFJeUJKY0hJcG44LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQDLhwYAwQC
ucp4AwQBwYeSAwQBz/TWMA0GCSqGSIb3DQEBCwUAA4IBAQBbwxl7p2OtMQ7NfSVi
si6TgpAaZgv1tcMTKQLxH/dKYKMr13jTbh2MqgSChoFAK44spN6mDCfyt7BnC9vy
KzhxGFbuUjnYKsY6Yc8q9kae7v+VfmkMhRqVIJX+ZruKq0HZ12Xg++bxlMln8xp0
k8AoA1Eg4P0VHw1rEJTeqXiRWyeqWpHChkUlAY9pGHnLf0hZtHS3asFRPC37p7b5
aOMFGOIHwv4rlslWl5xrBujzv7dGQx6LeMs/Wu98peWqDzaAkithRJT2+cmpCI3W
DdK54Q9OGx+d6laU77BMbVKJ4F32dDpDgPYzJSvcH4hQGIHI4fMQkJuSz53uNz7P
Kvfs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:54 2024 by rpki-client on console-fra.rpki-client.org